{"id":"CVE-2026-41677","summary":"rust-openssl: Out-of-bounds read in PEM password callback when user callback returns an oversized length","details":"rust-openssl provides OpenSSL bindings for the Rust programming language.  From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user's callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.","aliases":["GHSA-xmgf-hq76-4vx2"],"modified":"2026-07-16T18:29:37.989805449Z","published":"2026-04-24T17:17:17.849Z","related":["CGA-mr68-j6jr-86mj","SUSE-SU-2026:22554-1","SUSE-SU-2026:22583-1","SUSE-SU-2026:22589-1","SUSE-SU-2026:22593-1","SUSE-SU-2026:2807-1","SUSE-SU-2026:2825-1","SUSE-SU-2026:2826-1","SUSE-SU-2026:2831-1","SUSE-SU-2026:2832-1","SUSE-SU-2026:2975-1","SUSE-SU-2026:2976-1","SUSE-SU-2026:2977-1","SUSE-SU-2026:3022-1","SUSE-SU-2026:3026-1","SUSE-SU-2026:3040-1","openSUSE-SU-2026:11210-1","openSUSE-SU-2026:11222-1","openSUSE-SU-2026:11223-1","openSUSE-SU-2026:11224-1","openSUSE-SU-2026:11255-1","openSUSE-SU-2026:11262-1","openSUSE-SU-2026:21274-1","openSUSE-SU-2026:21285-1","openSUSE-SU-2026:21292-1","openSUSE-SU-2026:21294-1"],"database_specific":{"cwe_ids":["CWE-125","CWE-1284"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/41xxx/CVE-2026-41677.json","cna_assigner":"GitHub_M"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/41xxx/CVE-2026-41677.json"},{"type":"ADVISORY","url":"https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-xmgf-hq76-4vx2"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-41677"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/rust-openssl/rust-openssl","events":[{"introduced":"a0b56c437803a08413755928040a0970a93a7b83"},{"fixed":"a6debf535674c9a073f455158743e6ba094cf1b4"}],"database_specific":{"cpe":"cpe:2.3:a:rust-openssl_project:rust-openssl:*:*:*:*:*:rust:*:*","extracted_events":[{"introduced":"0.9.0"},{"fixed":"0.10.78"}],"source":["AFFECTED_FIELD","CPE_RANGE"]}}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-41677.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U"}]}